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[57] ABSTRACT 

A system which enables a protected program to run 
only a selected plurality of computers includes a respec- 
tive unique key Ki for each computer of the plurality, 
the key being triple encrypted in the form Ei^- 
PjtfEjpjtfKi]]]. A respective module is coupled to each 
computer of the plurality. A checker program in each 
computer responds to a request to use the protected 
program by performing a single decryption procedure 
Efk~ 1 on the triple encrypted key and sends the result 
to the module as a message. The module performs a 
single decryption procedure Eki~ ] on the message and 
sends that result back to the computer. The checker 
program receives the module's result and performs 
another single decryption procedure &fk~ 1 on it to 
obtain key Ki. Then the checker program uses key Ki to 
decrypt an identifier, and proceeds with the execution 
of the protected program only if it is identified by the 
decrypted identifier. 

10 Claims, 3 Drawing Figures 
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SYSTEM FOR PREVENTING SOFTWARE PIRACY 
EMPLOYING MULTI-ENCRYPTED KEYS AND 
SINGLE DECRYPTION CIRCUIT MODULES 
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BACKGROUND OF THE INVENTION 

This invention relates to data processing systems; and 
in particular it relates to data processing systems which 
include some means for preventing the piracy of soft- 
ware programs. 

Basically, every data processing system includes a 
digital computer which performs various tasks in re- 
sponse to a sequence of instructions called a program or 
software. Many different programs can be writtem for ^ 
the same computer; and in each program, the sequence 
of instructions is differently arranged in accordance 
with the particular task that the computer is to perform. 
For example, one program can direct the computer to 
perform inventory operations, another program can 2Q 
direct the computer to perform payroll operations, etc. 

Often, the programs which are written for a com- 
puter are very complex, comprise thousands of instruc- 
tions, and represent a considerable investment in time 
and money. Therefore, efforts have been made in the 25 
prior art to prevent software from being stolen by soft- 
ware pirates. However, software is very easy to copy 
since it usually is stored on a magnetic tape or magnetic 
disk which is readily duplicated. Consequently, protect- 
ing software from piracy is difficult to achieve. j 0 

This problem of protecting software is most difficult 
for corporations which produce and license software 
programs, as a product, to many different customers. 
Each time a program is distributed under a license to a 
different customer, that customer becomes a potential 35 
software pirate. For example, the potential exists for a 
customer to copy the licensed software, terminate his 
license, and thereafter run the software copy. Also, the 
potential exists for the customer to copy the software 
and distribute it to third parties. 40 

One of the prior art means which has been devised to 
prevent software piracy is described in U.S. Pat. Nos. 
4,168.396 and 4,278,837 to Best. In these patents, each 
instruction of the program is encrypted and sent to the 
customer in the encrypted form. Then, when the pro- 45 
gram is to be run, it is read into the computer in en- 
crypted form, decrypted inside of the computer, and 
executed. 

In the Best system, the decrypted program is not 
available for copying since the program on the storage 50 
media is always encrypted. However, since each in- 
struction must be decrypted prior to being executed, 
execution of the program is very slow. Further, the 
program only runs on specially constructed computers 
which do the decryption. These computers are only 55 
supplied by the software vendor; so the Best system 
does not even work in the typical case where the soft- 
ware customer wants to run a licensed program on a 
computer which he already owns. 

Another prior art software protection system is de- 60 
scribed in U.S. Pat. 4,471,163 by Donald et al. In that 
system, the customer of a licensed program is supplied 
a program lock unit which performs a predetermined 
calculation on a number; and the program itself is modi- 
fied to also perform the same calculation on the same 65 
number. Then the program compares the result of its 
calculations to the result obtained from the lock unit 
and the program stops if the two results are not equal. 
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A problem, however, with the Donald et al system is 
that the result of the calculation which the lock unit 
performs is passed to the computer over a conductor oh 
which it could be read by a line analyzer. After being 
read, that same result could be generated by any mem- 
ory circuit, such as a programmed read only memory. 
Thus a copy of the protected program could be made to 
run by simply replacing the lock unit with the read only 
memory. 

Also in the Donald et al system, no further checks are 
made after the two results have been compared and the 
program has started to run. Therefore, one copy of the 
program can be started on a system to which the lock 
unit is attached, and thereafter the lock unit can be 
removed and transferred to another system whereupon 
another copy of the program can be started. Thus the 
protection system is not suitable for programs of a type 
which operate for long time periods— such as graphics 
programs which operate all day in an interactive fash- 
ion with an operator. 

Another problem with the Donald et al system is that 
the customer of a licensed program must be given a 
copy of a key that contains several paramemters which 
the customer then enters via a keyboard into the lock 
unit. Those parameters are operated on by the lock unit 
to produce the result which the licensed program com- 
pares. However, having this key enables a customer of 
one program (program A) to copy his key and his pro-, 
gram, and then give those copies to a customer of an- 
other program (program B). In return, the customer of 
program B can copy his program and his key, and given 
them to the customer of program A. 

In view, therefore, of all of these prior art problems 
with protecting software, it is a primary object of the 
invention to provide an improved system for preventing 
software piracy in which these and other prior art defi- 
ciencies are overcome. 

BRIEF SUMMARY OF THE INVENTION 

In accordance with the present invention, the above 
object, and others, are achieved by a system which 
enables a protected program to run on only a selected 
plurality of computers, and which comprises: 
a respective unique key for each computer of the 
plurality; the key being triple encrypted in the form 
Ef/tfE^EMKi]]] where Ki is the unencrypted 
key, Em is an encryption procedure E which uses 
key Ki, and E^ is the same encryption procedure 
E using a single fixed key FK for all of the comput- 
ers; 

a respective module coupled to each computer of the 
plurality; 

a checker program in each computer which responds 
to a request to use the protected program by per- 
forming a single decryption procedure Efk~ ] on 
the triple encrypted key and sends the result to the 
module as a message M; 

a means in the module which performs a single de- 
cryption procedure Ej^/~ 1 on message M and sends 
Ejcf _1 [M] back to the computer; 

a means in the checker program for receiving 
Ejfc— lr M] from the module and for performing 
another single decryption procedure *Efk~ 1 on it to 
obtain key Ki; 

an identifier for the protected program that is en- 
crypted with key Ki; and 

a means in the checker program for using key Ki to 
decrypt the identifier, and for proceeding with the 
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execution of the protected program only if it is an operator at work station 11 for computer 10 to run a 

identified by the decrypted identifier. particular program. During its operation, program 15 

. „ ,„, nr „„ checks whether the requested program is included in 

BRIEF DESCRIPTION OF THE DRAWINGS thc encrypted M 14 . If H the requested program is in list 

Various features and advantages of the invention are 5 14, then execution of that program is permitted to oc- 

described in detail in the following Detailed Descrip- cur; otherwise, it is not. 

tion in conjunction with the accompanying drawings A software protection module (SPM) 16 which oper- 

wherein: ates in conjunction with program 15 is also included in 

FIG. 1 illustrates a system for preventing software the FIG. 1 system. Module 16 is coupled to computer 10 

piracy in accordance with the invention; and 10 via a serial I/O bus 17. In operation, module 16 receives 

FIG. 2 illustrates additional details of a decryptor- a message via bus 17 from computer 10, performs a 

checker program in the FIG. 1 system. decryption function E^- 1 on that message, and sends 

FIG. 2A is an extension of FIG. 2 and illustrates the results back via bus 17 to computer 10. 

further details of the decryptor-checker program in the If the FIG. 1 system is duplicated for different cus- 

FIG. 1 system. 15 tomers, the decryption steps E _1 which module 16 

__„ vt performs is the same in each system. However, the key 

DETAILED DESCRIPTION OF THE Ki which module 16 uses in ste p S is different in 

INVENTION ^ system> 

Referring now to FIG. 1, a preferred embodiment of Preferably, module 16 is packaged such that it is very 
a system which prevents software piracy in accordance 20 difficult, if not impossible, to open the package without 
with the invention will be described in detail. This sys- destroying the key Ki. This may be achieved by inte- 
tem includes a digital computer 10, a plurality of work grating the key inside of a microprocessor chip which is 
stations 11, and an input/output bus 12 which couples programmed to perform the Exr 1 function, and by 
the work stations 12 to computer 10. Computer 10 may putting the microprocessor chip in a very hard and 
beany type of general purpose digital computer, such as 25 chemically resistant substance, such as a polyimide, 
a GRAFTEK Comet. Similarly, each work station 11 Teflon, or ladder-organosiloxane polymers, 
may be any type of terminal which has a keyboard that Referring next to FIG. 2, the decryptor-checker pro- 
enables an operator to request computer 10 to execute gram 15 will be described in detail. This program is 
various programs, such as a GRAFTEK Meteor. entered at a point 20 in response to a request from an 

Also included in the FIG. 1 system is a disk 13 which 30 operator at work station 11 for computer 10 to run 

stores protected software programs that run on com- PROG A, PROG B, or PROG C. Program 15 begins by 

puter 10. These programs are indicated as PROG A, reading the triple encrypted key 14a from list 14. Then 

PROG B, and PROG C. Each program may direct it performs the single decryption function Efk~ 1 on 

computer 10 to perform any type of desired functions, entry 14a and sends the result to module 16 as a message 

and its exact makeup is unimportant. For example, the 35 M. This is indicated by reference numerals 21, 22, and 

programs could interact with an operator at the work- 23. 

station to rotate a graphics image on a CRT screen in Module 16 responds by receiving the message M 
the workstation, display two graphics images in a split which computer 10 sent and performing a single de- 
screen fashion on the CRT screen, or zoom in on a cryption function E/r/ — 1 on that information. Then 
particular feature of the image that is being displayed. 40 module 16 sends the result back to computer 10 as 
Disk 13 also stores an encrypted list 14. Entry 14a of E^-^M]. This is indicated in FIG. 2 by reference 
this list is a triple encrypted key of the form Efk- numerals 24, 25, and 26. 

[EjrfEFjrfKi]]]. In this expression, Ki is an unencrypted Program 15 receives the information which module 

key that is unique to computer 10. That is, each time the 16 sent and performs the single decryption function 

FIG. 1 system is duplicated for a different customer, 45 Efk~ 1 on it to obtain the unencryted key Ki. This is 

key Ki) is changed. indicated by reference numerals 27 and 28. 

Term Eki in the above expression represents an en- Thereafter, program 15 reads the remaining entries in 
cryption procedure E which uses key Ki. Thus, "when list 14 and performs the decryption functions E/cr 1 and 
the FIG. 1 system is duplicated for different customers, Efk" 1 on them. If the result of those decryption opera- 
the encryption procedure E in each system is the same, 50 tions yields the name of the program which was re- 
but the key Ki in each system is different. quested by work station 11, then execution of that pro- 

Similarly, term Efk in the above expression repre- gram continues. Otherwise, execution of the requested 

sents the encryption procedure E as recited above but program is bypassed. This is indicated by reference 

which is performed with a single fixed key FK. Thus, numerals 29 thru 33. 

when the FIG. 1 system is duplicated for different cus- 55 One important feature of the above described system 

tomers, the encryption procedure Eand its key FK is is that the list 14 and module 16 are matched such that 

the same in each system. they only work together as a pair. Thus a potential 

All of the protected programs on the FIG. 1 system software pirate cannot make and sell copies of the pro- 

also have a corresponding encrypted identifier in list 14. tected programs because each program will only run on 

Entry 146 is the encrypted identifier for PROG A; 60 a system which has a particular module 16. 

entry 14c is the encrypted identifier for PROG G; and Another important feature of the above described 

entry 14d is the encrypted identifier for PROG C. Each system is that none of the messages on bus 17 between 

of these identifiers is encrypted first with procedure computer 10 and module 16 contain key Ki in its unen- 

Efk and thereafter with procedure Ej&\ crypted form. Therefore, a potential software pirate 

Disk 13 also stores a decryptor-checker program 15. 65 cannot detect the key Ki by placing a line analyzer on 

All of the details of this program will be described bus 17 to read the messages on the bus. 

shortly in conjunction with FIG. 2. In general, how- Yet another feature of the above system is that none 

ever, program 15 operates in response to a request from of the messages that are transmitted on bus 17 corre- 
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spond to any entry in the encrypted list 14. Therefore, a 
potential software pirate cannot even determine what 
parts of list 14 are being transmitted on bus 17 by plac- 
ing a line analyzer on bus 17 to record the messages and 
by later comparing those messages to the data which is 5 
stored on the disk. 

Still another feature of the above described system is 
that key Ki permanently exists in its unencrypted form 
only in module 16. But module 16 is tamperproof in the 
sense that key Ki is destroyed if the module is opened. 10 
Therefore, there is no permanent copy of key Ki for a 
potential software pirate to obtain. 

Another feature of the above system is that it pro- 
vides a very practical means for a software vendor to 
protect his programs. This is because most computers 15 
have a serial I/O bus, and so that software vendor do- 
esn't heed to design a module with a new bus interface 
for each customer. Instead for each customer, only list 

14 needs to be encrypted differently and a different key 
Ki needs to be potted in module 16. 20 

Program 15 also has a second entry point as indicated 
by reference numeral 40. This point of the program is 
entered at randomly selected time instants while any of 
the authorized programs are running. 

Upon entering point 40, program 15 generates a ran- 25 
dom number and sends it to module 16. In response, a 
module 16 receives the random number, performs the 
decryption function Exr 1 on the random number, and 
sends the result back to computer 10. This is indicated 
by reference numerals 41 thru 45. 30 

After receiving the decrypted random number, pro- 
gram 15 acquires key Ki and performs the encryption 
function Eav on the decrypted random number. This 
result is then compared to the originally generated ran- 
dom number of step 41. If the numbers are equal, the 35 
running of the requested program is continued. Other- 
wise, the running of the requested program is termi- 
nated. This is indicated by reference numerals 46-49. 

One feature of this portion of program 15 is that it 
prevents a thief from removing module 16 after a pro- 40 
tected program has started running. Therefore, a thief 
cannot start the protected programs on the FIG. 1 sys- 
tem, move module 16 to another system which has a 
copy of the protected programs, and start the copied 
programs running without having FIG. 1 system stop. 45 

Yet another feature of the above portion of program 

15 is that h prevents a thief from duplicating module 16 
by placing a line analyzer on bus 17, monitoring and 
storing all of the responses which module 16 makes, and 
building a circuit which duplicates those responses. 50 
Such an attempt will not work since the numbers sent 
via step 42 and the response received via step 46 will 
always be changing with time. 

A preferred embodiment of the invention has now 
been described in detail. In addition, however, many 55 
changes and modifications can be made to these details 
without departing from the nature and spirit of the 
invention. 

For example, the details of the encryption steps E and 
decryption steps E~ 1 as well as their specific implemen- 60 
tation is unimportant. Any encryption-decryption algo- 
rithm will work so long as it meets the constraint E'xi 
[Ex:/[Ki]]=Ki. Many suitable algorithms and implemen- 
tations are described, for example, in the text Cryptogra- 
phy: A New Dimension in Computer Data Security by 65 
Meyer et al, published by John Wiley & Sons. 

As another modification, entry 14c in list 14 may be 
replaced with a double encrypted key of the form E/c- 



[EfjtfKi]]. This would eliminate the need for step 22 in 
program 14j which would make the program run faster. 
However, the price for this increase in speed will be a 
decreased, degree of security. 

As still another modification, checker program 15 
can be partitioned into may parts which are scrambled 
throughout the protected programs (e.g., program A, 
program B, and program C). Usually the protected 
programs are much larger than the checker program, so 
locating the checker program after such scrambling is 
essentially impossible. Thus, this gives an added degree 
of security since it prevents a potential software pirate 
from locating the checker program and bypassing it. 

Accordingly, since many such modifications are pos- 
sible, it is to be understood that the invention is not 
limited to the above details but is defined by the ap- 
pended claims. 

What is claimed is; 

1. A system for enabling a protected program to run 
on only a selected plurality of computers, comprising: 

a respective triple encrypted key for each of said 
computers of the form E/-Ar[Ext{E/?MKi]]] where 
Ki is an unencryped key that is unique to each of 
said computers, Eki is an encryption procedure E 
which uses key Ki, and Ef jris the same encryption 
procedure E using a single fixed key FK for all of 
said computers; 

a respective unique module coupled to each com- 
puter of said plurality for performing a decryption 
procedure Ea>— 1 where Ki is unique to each mod- 
ule; 

a checker program in each computer which responds 
to requests to use said protected program by per- 
forming a single decryption procedure Efk~ } on 
said triple encrypted key and sends the result to 
said module as a message M; 

said module being adapted to perform said single 
decryption procedure E^/ -1 on said message M and 
send EtfrHM] back to said computer; 

a means in said checker program for receiving 
Ep/r~ lr M] from said module and for performing 
another single decryption procedure Efk~ 1 on it to 
obtain key Ki; 

an identifier that is encrypted with said key Ki; and 

a means in said checker program for using key Ki to 
decrypt said identifier, and for proceeding with the 
execution of said protected program only if it is 
identified by the decrypted identifier. 

2. A system according to claim 1 wherein said 
checker program further includes a means for intermit- 
tently stopping the protected program's execution to 
send a random number to said module, to receive a 
response from said module, and to continue with the 
execution of said protected program only if the encryp- 
tion E^- of said response matches said random number. 

3. A system according to claim 2 wherein said identi- 
fier is double encrypted via procedures Efk and Ejr;. 

4. A system according to claim 3 wherein said mod- 
ule is coupled to its computer via a bit serial bus. 

5. A data processing system comprised of: 

a computer having a key Ki that is unique to said 
computer and is at least double encrypted in the 
form E^fEpjrfKi]] where E*/is an encryption pro- 
cedure E which uses key Ki, and Efk is the same 
encryption procedure E using another key FK; 

a module coupled to said computer for receiving said 
key in said double encrypted form in response to a 
request for said computer to run a protected pro- 
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gram and for partially decrypting said double en- 
crypted key to a single encrypted key E/^[Ki]; 
a checker program for receiving said single en- 
crypted key E/^pCi] from said module and for 
completing its decryption to Ki; 
an identifier that is encrypted with said key Ki; and 
a means in said checker program for using Ki to de- 
crypt said identifier, and for proceeding to run said 
protected program only if it is identified by the 
decrypted identifier. 

6. A system according to claim 5 wherein said 
checker program further includes a means for tempo- 
rarily stopping the protected program's execution to 
send a random number to said module, to receive a 
response from said module, and to continue with the 
execution of said protected program only if the encryp- 
tion Ejc/ of said response matches said random number. 

7. A system according to claim 5 wherein said key Ki 
is stored in a storage media in a triple encrypted form 
EFA-[Etf/[Eir/r[Ki]]], and said checker program includes 
a means for performing E^-l on the permanently 
stored key and sending the double encrypted result to 
said module. 
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8. A system according to claim 5 wherein said identi- 
fier is double encrypted via procedures Efk and E*/. 

9. A system according to claim 5 wherein said mod- 
ule is coupled to said computer via a bit serial bus. 

5 10. A data processing system of the type which in- 
cludes a computer, a protected program for said com- 
puter, and a module coupled to said computer; said 
system further including: 

a key Ki that is unique to said computer and is double 
10 encrypted; 

a means in said computer for receiving a request to 
use said protected program, and in response 
thereto, for sending said double encryted key to 
said module; 

IS a means in said module for performing a decryption 
procedure Ek/~ 1 on said double encrypted key to 
obtain a single encrypted key and for sending the 
latter back to said computer; 
a means in said computer for decrypting said single 
20 encrypted key to an unencrypted key; and 

a means in said computer for utilizing said unen- 
crypted key to decrypt an encrypted identifier, and for 
proceeding with the execution of said protected pro- 
gram only if the decrypted identifier has a predeter- 
25 mined value. 

* « * * * 
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